$ rpki-client -vvf repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa File: 3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa (raw, json) Hash identifier: F83rAGnGV/i4wrzM5kVZiEtXPE/6b5pYoMCrcdeZ8RU= Subject key identifier: D9:40:4B:8E:46:9A:9A:A1:D2:A2:0C:5D:13:DD:30:A1:EF:CD:BD:0B Certificate issuer: /CN=A203777786215EACE763209954A241380D9D9512 Certificate serial: 0E1CF4CB10DAB1316A43CCA42BA6A23564331C7D Authority key identifier: A2:03:77:77:86:21:5E:AC:E7:63:20:99:54:A2:41:38:0D:9D:95:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa Signing time: Mon 23 Feb 2026 10:00:01 +0000 ROA not before: Mon 23 Feb 2026 09:55:01 +0000 ROA not after: Mon 22 Feb 2027 10:00:01 +0000 asID: 149754 IP address blocks: 103.189.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.crl rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:1c:f4:cb:10:da:b1:31:6a:43:cc:a4:2b:a6:a2:35:64:33:1c:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A203777786215EACE763209954A241380D9D9512 Validity Not Before: Feb 23 09:55:01 2026 GMT Not After : Feb 22 10:00:01 2027 GMT Subject: CN=D9404B8E469A9AA1D2A20C5D13DD30A1EFCDBD0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:31:e2:5e:d4:5f:54:28:32:2d:ca:29:57:7d: 69:86:ec:1d:d4:3a:dd:6a:44:0d:3f:e9:43:91:8a: 41:90:d7:ca:22:c5:2d:b6:cd:24:84:58:7d:ed:f0: 57:b7:f7:c9:e0:28:25:a6:1b:b8:dd:6a:00:2e:ca: 5d:05:ab:b2:53:fc:2b:26:1a:f8:af:6b:5f:58:b8: 7c:69:43:00:6e:7f:61:26:a8:59:29:0b:06:8c:4f: 26:4f:56:f6:e3:27:33:c0:4d:ca:62:d4:bd:1b:67: 71:80:50:15:a6:8e:96:70:39:b7:65:4c:a6:3e:13: c7:ec:9f:c3:0c:60:81:b7:87:4e:9b:85:66:ec:7b: 2e:4e:b9:98:e0:58:0f:a8:f1:1c:5f:1b:1f:31:7d: 1d:79:59:eb:08:6e:bd:8a:91:e0:2d:02:b4:f3:4c: 25:61:dd:89:43:c5:25:24:f2:95:7d:47:45:1b:9c: 8e:9e:54:8b:84:9b:db:70:89:f1:8d:60:f0:00:13: a6:ea:93:9f:17:1e:b1:bc:f2:c4:d8:b6:98:54:10: 4d:80:d6:31:a4:95:42:55:02:ce:5b:14:35:b6:64: 9a:d5:30:ad:3a:60:84:0f:f1:ac:6d:da:37:17:d0: e9:bb:c4:c6:db:d7:1c:fc:98:62:4b:95:d5:98:dd: 37:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:40:4B:8E:46:9A:9A:A1:D2:A2:0C:5D:13:DD:30:A1:EF:CD:BD:0B X509v3 Authority Key Identifier: keyid:A2:03:77:77:86:21:5E:AC:E7:63:20:99:54:A2:41:38:0D:9D:95:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.165.0/24 Signature Algorithm: sha256WithRSAEncryption 05:af:d8:3f:ad:a8:48:3d:2f:c1:87:a8:7d:cc:be:32:c6:a6: b2:dd:66:5c:ff:20:b2:6d:38:f4:b8:ad:07:9e:39:e7:a4:91: d0:39:f8:46:b7:54:50:cf:e0:db:57:cc:8c:dc:04:64:0e:a2: 24:82:3a:71:0f:d6:37:83:47:1c:00:37:e3:f8:28:5d:5d:61: e5:08:27:22:82:03:10:b4:db:13:57:4b:0c:3d:21:7d:10:b2: 38:aa:bb:fc:21:47:c1:a0:6e:3e:98:8d:1b:0a:55:fc:fb:d7: 2d:26:f6:09:52:c0:d5:16:05:ae:ab:ed:0d:bb:e9:ae:3c:87: c7:76:a2:9b:f5:15:54:9c:7d:44:5a:a5:46:eb:a2:6a:65:d7: 6e:cd:25:58:06:d0:22:0a:d2:9c:19:9e:4d:70:70:ad:cf:df: 8b:a3:a2:37:2a:ec:8a:31:b6:89:ff:f2:6c:91:c3:32:7a:30: 0a:b5:db:47:fe:dd:88:29:49:75:ba:b4:f6:f9:1c:64:71:82: 1e:5f:b6:2a:7d:45:a6:3b:73:39:18:8c:37:17:df:ac:77:fa: da:a4:99:ae:9e:8d:20:6d:3c:fa:25:15:a2:03:50:81:3e:37: 4b:24:1b:99:c5:8c:c0:30:40:b6:cd:f6:44:a1:ec:5b:18:aa: 79:b7:62:94 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDhz0yxDasTFqQ8ykK6aiNWQzHH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIwMzc3Nzc4NjIxNUVBQ0U3NjMyMDk5NTRBMjQxMzgw RDlEOTUxMjAeFw0yNjAyMjMwOTU1MDFaFw0yNzAyMjIxMDAwMDFaMDMxMTAvBgNV BAMTKEQ5NDA0QjhFNDY5QTlBQTFEMkEyMEM1RDEzREQzMEExRUZDREJEMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFMeJe1F9UKDItyilXfWmG7B3U Ot1qRA0/6UORikGQ18oixS22zSSEWH3t8Fe398ngKCWmG7jdagAuyl0Fq7JT/Csm Gviva19YuHxpQwBuf2EmqFkpCwaMTyZPVvbjJzPATcpi1L0bZ3GAUBWmjpZwObdl TKY+E8fsn8MMYIG3h06bhWbsey5OuZjgWA+o8RxfGx8xfR15WesIbr2KkeAtArTz TCVh3YlDxSUk8pV9R0UbnI6eVIuEm9twifGNYPAAE6bqk58XHrG88sTYtphUEE2A 1jGklUJVAs5bFDW2ZJrVMK06YIQP8axt2jcX0Om7xMbb1xz8mGJLldWY3TcnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2UBLjkaamqHSogxdE90woe/NvQswHwYDVR0j BBgwFoAUogN3d4YhXqznYyCZVKJBOA2dlRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmY2YzUxNi1lZjExLTRjMTUtOGIzMy0yZWIxMDQwMzA0M2IvMC9BMjAzNzc3Nzg2 MjE1RUFDRTc2MzIwOTk1NEEyNDEzODBEOUQ5NTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTIwMzc3Nzc4NjIxNUVBQ0U3NjMyMDk5NTRBMjQxMzgwRDlE OTUxMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZjZjNTE2LWVmMTEtNGMxNS04 YjMzLTJlYjEwNDAzMDQzYi8wLzMxMzAzMzJlMzEzODM5MmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvaUwDQYJ KoZIhvcNAQELBQADggEBAAWv2D+tqEg9L8GHqH3MvjLGprLdZlz/ILJtOPS4rQee OeekkdA5+Ea3VFDP4NtXzIzcBGQOoiSCOnEP1jeDRxwAN+P4KF1dYeUIJyKCAxC0 2xNXSww9IX0Qsjiqu/whR8Ggbj6YjRsKVfz71y0m9glSwNUWBa6r7Q276a48h8d2 opv1FVScfURapUbrompl127NJVgG0CIK0pwZnk1wcK3P34ujojcq7Ioxton/8myR wzJ6MAq120f+3YgpSXW6tPb5HGRxgh5ftip9RaY7czkYjDcX36x3+tqkma6ejSBt PPolFaIDUIE+N0skG5nFjMAwQLbN9kSh7FsYqnm3YpQ= -----END CERTIFICATE-----Generated at Mon Mar 2 16:13:19 2026 by rpki-client